search

celzero / rethink-app

DNS over HTTPS / DNS over Tor / DNSCrypt client, WireGuard proxifier, firewall, and connection tracker for Android.
https://rethinkfirewall.com/
Apache License 2.0
2.64k stars 135 forks source link

FeatureRequest, BugReport, Suggestion for VPN, Firewall, Other Features #1348

Open Rexadev opened 3 months ago

Rexadev commented 3 months ago

Updated on 2024-04-11

Bugs

[Duplicate #1050] "Apps Firewall" doesn't remember filter state [Duplicate #1373] VPN - WireGuard Config file name is not imported as Profile's name.

  1. Add option to import IP Blocklist via URL
  2. Can't Access router settings on LAN

Features

Apps Firewall

  1. "Apps Firewall" Add option to allow/block LAN access
  2. "Apps Firewall" Add option to allow/block Loopback access
  3. "Apps Firewall" Show New apps at top

VPN

  1. VPN - Add option to use same "App Allow List" for many VPN Profiles
  2. VPN - Add option to 'allow all except' mode
  3. VPN - App selector page doesn't have User/System Apps Filter

~12. Show popup notification for new app installed and option to allow/block~

  1. In App reminder to turn on Android's "Always On VPN" ~14. Add 'kill switch' for WireGuard~
  2. Get stats's Data usage using Android "Usage Access" permission
  3. Add I2P
  4. Advanced TOR features - 17.1 Bridges, 17.2 Spoof SNI, 17.3 Allowing only select apps or domains though TOR 17.4 Select - Entry Nodes, Exit Nodes, Entry Node Country, Exit Node Country, 17.5 Padding 17.6 Port Selection 17.7 Contribute as Snowflake or Node
  5. DNS - 19.1 DNSSEC 19.2 Secure SNI 19.3 Add DNS servers used by https://github.com/Gedsh/InviZible they are good
  6. Security - ARP spoofing detection
  7. IPtables/nftables support - with scripts

Big Features

  1. [Duplicate #794] Add option to import Domain Blocklist via URL
  2. Add DPI (https://github.com/zhenyolka/DPITunnel-android)

Suggestion

  1. VPN - Instead of Yellow/Red/Blue border show a dot with text running, error, etc...
  2. 'On device Blocklist' - Move Language/Geo specific lists to a separate category, move same list with different aggression eg. OISD big and small are far apart together, service specific like WhatsApp Facebook etc. to a different category(not under parental control), Move all adult lists together .
  3. UI - Merge Home and Configure Page 24.1 "Apps" can be moved from Configure to a option under "Firewall" in Home Page. Also there is already a Apps Option in Home Page
  4. UI - Sometimes Proxy and VPN are used interchangeably
  5. Was waiting for a VPN+DNS+Firewall without root and checked and it was added in 2023 September. F-droid repo doesn't have changelogs

Love the App!

ignoramous commented 2 months ago

Thanks. I'll get to the rest of the points later.

"Apps Firewall" doesn't remember filter state

Please track at: #1050

WireGuard Config file name is not imported as Profile's name.

1373

Add option to import Domain Blocklist via URL / Add option to import IP Blocklist via URL

Not easy, but we may yet impl it: #794

Can't Access router settings on LAN

You can choose to bypass Rethink for "LAN" IPs by enabling Configure -> Network -> Do not route Private IPs

Rexadev commented 2 months ago

You can choose to bypass Rethink for "LAN" IPs by enabling Configure -> Network -> Do not route Private IPs

Not accessible when using lockdown mode VPN